Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.mft
File: uoGySm1gML8IjeowyaWTL-vcanw.mft (raw, json)
Hash identifier: D3D/P4daqzEdf77v/NyMh6hx2H3/9EJ22EwGdlH1M1w=
Subject key identifier: 14:57:D6:45:4A:FC:0B:C8:2B:98:D8:D9:DC:85:E3:A1:F2:A2:EB:D7
Authority key identifier: BA:81:B2:4A:6D:60:30:BF:08:8D:EA:30:C9:A5:93:2F:EB:DC:6A:7C
Certificate issuer: /CN=ba81b24a6d6030bf088dea30c9a5932febdc6a7c
Certificate serial: 0199FE104A21244136FFE0EF86242BCA9AAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uoGySm1gML8IjeowyaWTL-vcanw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.mft
Manifest number: 01AA
Signing time: Sun 19 Oct 2025 20:01:44 +0000
Manifest this update: Sun 19 Oct 2025 20:01:44 +0000
Manifest next update: Mon 20 Oct 2025 20:01:44 +0000
Files and hashes: 1: dHqraQM0J28TwBZI9kOV-wg_Nys.roa (hash: 9SP50kXHayfJ5rdM97ecdGjoNLOBx7zfNbIDZBfMyaE=)
2: uoGySm1gML8IjeowyaWTL-vcanw.crl (hash: F9SSNguPPVT0eANadpmjJIy530rxx2rxFoc43gFAL4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.crl
rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.mft
rsync://rpki.ripe.net/repository/DEFAULT/uoGySm1gML8IjeowyaWTL-vcanw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:10:4a:21:24:41:36:ff:e0:ef:86:24:2b:ca:9a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba81b24a6d6030bf088dea30c9a5932febdc6a7c
Validity
Not Before: Oct 19 20:01:44 2025 GMT
Not After : Oct 20 20:01:44 2025 GMT
Subject: CN=1457d6454afc0bc82b98d8d9dc85e3a1f2a2ebd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:51:76:89:8e:04:31:ec:1c:7a:ee:3f:93:c9:
ba:86:2d:be:01:1d:e7:a5:a8:71:d6:6b:2e:15:70:
fb:a1:f0:07:f9:15:7b:7d:89:ac:d5:9c:61:16:b0:
d7:2c:e3:9c:3c:ee:bd:a1:e4:af:e2:34:ac:d1:72:
68:f4:88:f3:18:63:b4:ec:c0:93:e0:62:76:49:94:
85:92:47:a8:5c:7a:fc:77:0b:ba:07:80:61:a1:12:
df:b5:eb:c0:32:d1:18:78:5f:06:20:80:3c:e1:c3:
26:94:92:41:32:70:e6:4d:8f:75:44:33:a8:89:b5:
8e:26:ce:af:10:54:a1:b3:3f:29:96:59:1a:ee:c4:
56:b5:c8:52:90:ec:c4:81:d8:71:0c:58:a4:45:b2:
a3:e1:0d:f0:60:dd:b4:1f:e8:dc:2f:b9:9d:f8:92:
4d:ce:e6:43:c8:49:57:df:1b:d6:fe:66:3e:84:12:
28:15:59:a3:e3:c8:63:e0:4f:2a:5e:4a:7e:2e:67:
4b:11:0b:c9:88:f2:0e:cf:1e:05:43:57:a5:de:51:
8e:5d:bd:cf:6b:5b:bf:71:d8:b3:be:67:fc:1c:91:
fb:86:1f:3f:d8:74:85:21:2a:62:19:5e:eb:c1:12:
b8:01:68:2a:c7:95:36:c2:fd:a6:9c:bb:b9:3b:31:
bb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:57:D6:45:4A:FC:0B:C8:2B:98:D8:D9:DC:85:E3:A1:F2:A2:EB:D7
X509v3 Authority Key Identifier:
keyid:BA:81:B2:4A:6D:60:30:BF:08:8D:EA:30:C9:A5:93:2F:EB:DC:6A:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uoGySm1gML8IjeowyaWTL-vcanw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/700333-aa9c-4bd3-8204-48cd05eca736/1/uoGySm1gML8IjeowyaWTL-vcanw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:64:d5:86:44:13:d5:3e:15:fc:6a:10:23:19:f0:50:70:1f:
60:dc:cb:1d:ed:08:8f:8a:de:f8:10:64:72:ab:79:2a:70:77:
83:11:d9:dc:f1:93:a9:b4:cb:d9:23:61:f1:25:ad:01:f3:aa:
83:ca:de:5a:fc:07:3b:9f:81:fb:f1:bc:3a:49:5c:fa:f0:bf:
95:ec:8f:14:d7:eb:2d:34:b7:c2:c5:59:c3:9d:54:62:b6:94:
df:69:eb:d4:1a:ac:f1:d5:9d:5c:4d:fb:f8:76:5b:4f:87:80:
ad:42:22:2b:02:e1:e9:89:62:5d:04:1b:89:88:84:4f:34:e1:
7f:16:c5:90:0f:00:8f:e3:21:d4:64:ef:a5:65:01:50:7e:0f:
a7:bb:b2:f8:9b:59:38:14:66:97:f3:e1:c3:d9:9b:d7:8a:bd:
e0:98:46:ce:ac:51:bf:65:40:e0:1f:36:97:6d:c0:17:b0:c2:
28:30:df:b1:e7:7a:88:f0:8a:32:14:ea:74:f4:8f:d2:c1:f7:
2d:cb:e5:9e:49:51:c5:e0:8a:2c:99:a6:33:45:dc:a9:14:9d:
2e:c3:5a:d5:52:f1:0d:88:30:d3:aa:75:17:85:bc:de:c0:f9:
b7:14:8c:4e:67:7a:ce:5c:3a:15:75:1d:e0:83:13:56:32:41:
44:49:77:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:20:39 2025 by rpki-client